Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
File: lQPIUJD5zC4inTj96rrmJlCL3rg.mft (raw, json)
Hash identifier: yL6fx7QuH1loc2YpFXjQdRAebLzoJ24jjn22f2y0bVM=
Subject key identifier: 9C:C6:03:DF:B4:D0:B0:6F:36:D6:79:E5:B3:A8:B0:00:AF:34:20:9A
Authority key identifier: 95:03:C8:50:90:F9:CC:2E:22:9D:38:FD:EA:BA:E6:26:50:8B:DE:B8
Certificate issuer: /CN=9503c85090f9cc2e229d38fdeabae626508bdeb8
Certificate serial: 01964D1072B8F5DC1D5175DEF690FE1D3346
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
Manifest number: 021B
Signing time: Sat 19 Apr 2025 08:00:45 +0000
Manifest this update: Sat 19 Apr 2025 08:00:45 +0000
Manifest next update: Sun 20 Apr 2025 08:00:45 +0000
Files and hashes: 1: lQPIUJD5zC4inTj96rrmJlCL3rg.crl (hash: 0zuXwVpzu6t/uSmjkSb3BPBEq1pFzjz5ule1hcX+GvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:72:b8:f5:dc:1d:51:75:de:f6:90:fe:1d:33:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9503c85090f9cc2e229d38fdeabae626508bdeb8
Validity
Not Before: Apr 19 08:00:45 2025 GMT
Not After : Apr 20 08:00:45 2025 GMT
Subject: CN=9cc603dfb4d0b06f36d679e5b3a8b000af34209a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bd:bf:e2:da:8b:55:c4:c7:a1:ff:92:f1:35:
74:8c:8b:b5:71:e5:00:cf:05:d7:06:1f:78:7d:15:
fb:b7:e7:10:ad:0a:42:4f:2e:0a:b0:95:57:4f:70:
98:cd:6a:3d:23:70:7e:a8:1f:49:98:c4:ec:78:3d:
44:be:ed:f9:b5:72:7c:ff:e8:4d:82:0f:12:74:1b:
00:ef:5f:d8:48:14:f2:9a:cc:09:82:7e:a6:e2:ee:
e1:8f:79:4e:63:20:d8:d2:90:fd:f9:bc:68:1f:21:
9d:60:1a:4c:03:b8:a4:86:ba:6a:e5:2e:ea:50:79:
13:5d:87:22:45:66:2f:4d:60:6a:22:d7:a1:59:d1:
3a:08:1f:50:1e:a0:37:43:85:d8:ed:4c:4f:35:70:
b1:2b:3e:9e:cb:41:a5:7e:bc:93:b2:23:0b:f1:eb:
a9:07:9e:9e:fa:6d:3b:bb:98:d4:af:35:b4:3d:72:
25:b2:3d:5a:a1:72:91:55:84:af:83:61:e0:46:f5:
db:4d:4e:a2:87:7a:ef:58:20:23:b5:ac:f4:9b:bf:
fa:0e:92:6d:4c:9c:44:5b:63:f7:59:fb:02:84:3e:
4e:2e:2e:fc:a0:26:a3:a3:85:c0:90:44:b4:9e:69:
57:6f:03:fa:ff:31:59:15:cb:4c:3c:0f:22:8f:d4:
26:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:C6:03:DF:B4:D0:B0:6F:36:D6:79:E5:B3:A8:B0:00:AF:34:20:9A
X509v3 Authority Key Identifier:
keyid:95:03:C8:50:90:F9:CC:2E:22:9D:38:FD:EA:BA:E6:26:50:8B:DE:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:41:e7:8c:ff:1e:17:59:be:1e:28:74:74:7c:48:d0:7f:a5:
81:99:98:e4:49:be:fe:cb:fb:17:01:23:80:b3:5a:97:dc:56:
52:84:56:3e:6a:33:24:e5:2b:5a:2e:ce:bd:95:02:27:06:50:
79:69:92:5d:10:ab:e8:bb:02:72:2d:d0:b7:4d:e5:52:58:f9:
3b:bb:bd:ca:b5:2b:5c:04:52:e4:c9:8e:84:24:89:3e:76:63:
f9:a1:fe:78:e4:c4:fd:2e:a5:ac:d2:66:fb:14:8e:ba:09:46:
f3:26:a2:f8:b6:95:46:4e:81:f7:65:7b:16:f7:14:e7:be:87:
73:2c:25:ff:d0:43:90:d2:b9:dc:c6:78:6d:1e:3c:77:54:b1:
ab:67:dc:49:50:95:04:26:37:a1:08:78:b7:a1:14:e2:3a:92:
58:06:43:ae:f8:92:69:fe:e8:33:29:00:de:67:64:02:13:8c:
f2:de:8a:00:3a:a7:79:0a:58:06:3b:6c:99:eb:75:24:3f:0c:
ba:33:b2:3a:d6:63:aa:49:37:0c:c3:c4:55:56:7a:44:c8:43:
d0:ab:e9:ac:a0:a7:47:11:d0:40:18:08:70:68:91:2d:2b:00:
76:a0:c8:45:8a:fd:27:25:00:2e:5d:62:ec:35:3c:97:8a:b6:
0f:9b:3b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:22:29 2025 by rpki-client